Cloud Engineer
Job Title Cloud Engineer
Reports To Senior Director, Infrastructure
Job Overview The Cloud Engineer will work closely with all areas of IT to assist in the architecture, design, build, operation, security, and monitoring of client's cloud infrastructure within Microsoft Azure. In this role, the engineer will use holistic thinking and architectural aptitude to drive proper requirements gathering, analysis, design, and implementation of solutions in both Azure Infrastructure as a Service (IaaS) and Platform as a Service (PaaS) offerings. This person will also be responsible for generating documentation as needed; conforming to cloud security and architectural quality standards; and staying current on emerging trends. The person will work very closely with Software, Data and Security teams of the Technology group. For a successful candidate for this position, you must – • Have experience in architecting/deploying Azure environments with considerations to optimized cost and capacity, monitoring, scaling, DR scenarios, and Azure security • Have experience with Azure Storage, Azure SQL, Azure Cloud Services, Azure Web App, basic Azure Networking technologies. • Have good understanding of Identity and Access Management products such as Azure AD, ADFS, Azure AD Connect, Conditional Access, Azure AD Proxy, SAML • Be able to provide recommendations with respect to cloud migrations and prepare technical implementation roadmaps for optimizations, upgrades, and enhancements • Possess strong PowerShell scripting experience Responsibilities and Duties • Contribute to the strategy for establishing a secure and well-managed enterprise environment in Azure. • Configure and manage client's Virtual Networks in Azure, establish our core services in the VNET, enable Azure to serve as a part of network. • Design and implement network connectivity to Azure (e.g., VPN, Express Route, DNS, IP allocation and traffic routing, NSG’s and Azure Firewall, etc.) • Provision Dev, Test, and Prod Infrastructure as code using Azure CLI, Powershell, and ARM templates. Develop scripts to automate the deployment of resource stacks and associated configurations • Integrate, configure, deploy, and manage cloud services which may include: IAM, networking, monitoring, operating systems, VMs, App Services, DBaaS, Containers, etc. • Administrate Windows Servers, automating deployments, patching, and scripting • Utilize native Azure services to meet the firm’s technology and resiliency requirements. Define and implement the configuration of Azure PAAS and IAAS services for high availability data redundancy, data loss prevention, site recovery, and resilience. • Implement the security architecture to ensure data security at rest and in transit, application security, key management, identity management, authentication and authorization with OIDC and OAuth2, and infrastructure security with Azure VNets, NSGs, UDR, etc. • Implement monitoring and management infrastructure for both availability and performance management. • Extend  standard systems management processes into the cloud including change, incident, and problem management. • Support software, data and security team on cloud architecture, provisioning and compliance needs • Evaluate changes/updates to cloud technologies and makes substantiated recommendations for improving solution capabilities • Support the engineering of secure technology solutions that adopt DevSecOps, Cloud (IaaS, PaaS, SaaS) in a healthcare industry • Mentor and support the development of other members of the team on cloud technology Qualifications • Bachelor's degree (in Computer Science, Math or Engineering) • 8+ years of experience as a full time IT professional • 3+ years of experience designing and supporting Azure environments, including IaaS and PaaS • Microsoft Azure Certification (MCSE: Cloud Platform and Infrastructure or equivalent) • Demonstrable experience with these Azure components: o Azure CLI, Powershell, and ARM Templates o Azure Networking, Azure Virtual Networks, ExpressRoute, Site to Site VPN, NSG, App Service, Azure SQL DB o Azure DevOps configuration and management o Identity Management, Azure AD, Azure Key Vault, HSTS SSL TLS Certificate management, Azure Security Center Threat Detection o Cloud monitoring Experience with Azure Log Analytics, Azure Monitor, Application Insights o Azure administration portal • Demonstrable experience deploying enterprise workloads to Azure • Knowledge of at least one other cloud hosting solution in addition to Azure (e.g. Google, AWS, Helion Cloud, SoftLayer). • Proficiency with PowerShell, Python, or other scripting languages • Experience designing and supporting enterprise core services as well as cloud deployments of these services • Extensive knowledge of the Microsoft Enterprise software products and services • Business Continuity or Disaster Recovery planning experience,a plus